Use fuzz_config to config fuzzing size

Do not hard code the size in the source code. Use fuzz_config in Android.bp to do that. Test: atest servicemanager_test Bug: 232439428 Bug: 240318902 Change-Id: I03c186bc6eed60f1368bfcb9e0a21dbd5c4c1c11
author: Keith Mok <keithmok@google.com> 2022-08-17 03:58:14 +0000
committer: Keith Mok <keithmok@google.com> 2022-08-20 23:29:20 +0000
commit: 4cb7aec90420df93fa6856466e6b80b596496f59 (patch)
tree: 4ceaae4dadf38920254d1857f5ad02f1f1eefc95
parent: a417e3131cdf387838128b55b2b8cf5bc8d47027 (diff)
2 files changed, 4 insertions, 5 deletions
diff --git a/cmds/servicemanager/Android.bp b/cmds/servicemanager/Android.bp
index 25bd9a3981..edeb2a4a33 100644
--- a/cmds/servicemanager/Android.bp
+++ b/cmds/servicemanager/Android.bp
@@ -113,6 +113,9 @@ cc_fuzz {
     },
     srcs: ["ServiceManagerFuzzer.cpp"],
     fuzz_config: {
+        libfuzzer_options: [
+            "max_len=50000",
+        ],
         cc: [
             "smoreland@google.com",
             "waghpawan@google.com",
diff --git a/cmds/servicemanager/ServiceManagerFuzzer.cpp b/cmds/servicemanager/ServiceManagerFuzzer.cpp
index 9e2e53f850..39f8522f84 100644
--- a/cmds/servicemanager/ServiceManagerFuzzer.cpp
+++ b/cmds/servicemanager/ServiceManagerFuzzer.cpp
@@ -26,13 +26,9 @@ using ::android::ServiceManager;
 using ::android::sp;
 
 extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
-    if (size > 50000) {
-        return 0;
-    }
-
     auto accessPtr = std::make_unique<Access>();
     auto serviceManager = sp<ServiceManager>::make(std::move(accessPtr));
     fuzzService(serviceManager, FuzzedDataProvider(data, size));
 
     return 0;
-}
-\ No newline at end of file
+}
author	Keith Mok <keithmok@google.com>	2022-08-17 03:58:14 +0000
committer	Keith Mok <keithmok@google.com>	2022-08-20 23:29:20 +0000
commit	4cb7aec90420df93fa6856466e6b80b596496f59 (patch)
tree	4ceaae4dadf38920254d1857f5ad02f1f1eefc95
parent	a417e3131cdf387838128b55b2b8cf5bc8d47027 (diff)